CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2025-27991

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.00421EPSS

Exploits0References1

RedhatCVE•added 2025/07/03 8:23 a.m.•3 views

CVE-2025-41648

An unauthenticated remote attacker can bypass the login to the web application of the affected devices making it possible to access and change all available settings of the IndustrialPI...

9.8CVSS7.6AI score0.00421EPSS

Exploits0References1

BDU FSTEC•added 2025/07/02 12:0 a.m.•2 views

The vulnerability of the Node-RED visual programming tool’s server on the Pilz IndustrialPI operating system allows a perpetrator to execute arbitrary commands.

The vulnerability of the Node-RED visual programming tool on the Pilz IndustrialPI industrial computer server is related to the absence of default authentication settings. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

10CVSS5.9AI score0.00538EPSS

Exploits0References2Affected Software1

NVD•added 2025/07/01 8:15 a.m.•3 views

CVE-2025-41648

An unauthenticated remote attacker can bypass the login to the web application of the affected devices making it possible to access and change all available settings of the IndustrialPI...

9.8CVSS0.00421EPSS

Exploits0References1

Cvelist•added 2025/07/01 8:10 a.m.•7 views

CVE-2025-41648 Pilz: Authentication Bypass in IndustrialPI Webstatus

An unauthenticated remote attacker can bypass the login to the web application of the affected devices making it possible to access and change all available settings of the IndustrialPI...

9.8CVSS0.00421EPSS

Exploits0References1

CVE•added 2025/07/01 8:10 a.m.•33 views

CVE-2025-41648

CVE-2025-41648 affects Pilz IndustrialPI Webstatus. An unauthenticated remote attacker can bypass the login to the IndustrialPI web application, allowing access to and modification of all available settings. The available connected docs consistently describe this as an authentication bypass leadi...

9.8CVSS7.5AI score0.00421EPSS

Exploits0References1

Vulnrichment•added 2025/07/01 8:10 a.m.•3 views

CVE-2025-41648 Pilz: Authentication Bypass in IndustrialPI Webstatus

An unauthenticated remote attacker can bypass the login to the web application of the affected devices making it possible to access and change all available settings of the IndustrialPI...

9.8CVSS7.5AI score0.00421EPSS

Exploits0References1

CNNVD•added 2025/07/01 12:0 a.m.•4 views

Pilz IndustrialPI 代码问题漏洞

Pilz IndustrialPI is a gateway for the Industrial Internet of Things from Pilz Individual Developers in Germany. A code issue vulnerability exists in Pilz IndustrialPI that stems from an unauthenticated login bypass resulting in a setting change...

9.8CVSS7.1AI score0.00421EPSS

Exploits0References2

CNNVD•added 2025/07/01 12:0 a.m.•5 views

Pilz IndustrialPI 访问控制错误漏洞

Pilz IndustrialPI is a gateway for the Industrial Internet of Things from Pilz Individual Developers in Germany. An access control error vulnerability exists in Pilz IndustrialPI that stems from the default unconfigured NodeRED server authentication leading to command execution...

10CVSS7.2AI score0.00538EPSS

Exploits0References2

Positive Technologies•added 2025/07/01 12:0 a.m.•3 views

PT-2025-27508 · Unknown · Industrialpi

Name of the Vulnerable Software and Affected Versions: IndustrialPI affected versions not specified Description: An unauthenticated remote attacker can bypass the login to the web application of the affected devices, making it possible to access and change all available settings of the...

9.8CVSS6.5AI score0.00421EPSS

Exploits0References11

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by